1 results (0.002 seconds)
CVSS: 9.3EPSS: 0%CPEs: 2EXPL: 1
CVSS: 9.3EPSS: 0%CPEs: 2EXPL: 1CVE-2009-1491
https://notcve.org/view.php?id=CVE-2009-1491
05 May 2009 — McAfee GroupShield for Microsoft Exchange on Exchange Server 2000, and possibly other anti-virus or anti-spam products from McAfee or other vendors, does not scan X- headers for malicious content, which allows remote attackers to bypass virus detection via a crafted message, as demonstrated by a message with an X-Testing header and no message body. McAfee GroupShield para Microsoft Exchange en Exchange Server 2000, y posiblemente otros productos antivirus y antispam de McAfee y otros vendedores, no escanea ... • http://www.nmrc.org/~thegnome/blog/apr09 • CWE-20: Improper Input Validation •